CVE-2014-0143

Impact:
Moderate
Public Date:
2014-03-26
CWE:
CWE-190
Bugzilla:
1079140: CVE-2014-0143 Qemu: block: multiple integer overflow flaws

The MITRE CVE dictionary describes this issue as:

Multiple integer overflows in the block drivers in QEMU, possibly before 2.0.0, allow local users to cause a denial of service (crash) via a crafted catalog size in (1) the parallels_open function in block/parallels.c or (2) bochs_open function in bochs.c, a large L1 table in the (3) qcow2_snapshot_load_tmp in qcow2-snapshot.c or (4) qcow2_grow_l1_table function in qcow2-cluster.c, (5) a large request in the bdrv_check_byte_request function in block.c and other block drivers, (6) crafted cluster indexes in the get_refcount function in qcow2-refcount.c, or (7) a large number of blocks in the cloop_open function in cloop.c, which trigger buffer overflows, memory corruption, large memory allocations and out-of-bounds read and writes.

Find out more about CVE-2014-0143 from the MITRE CVE dictionary dictionary and NIST NVD.

Statement

This issue affects the versions of kvm package as shipped with Red Hat
Enterprise Linux 5.

This issue affects the versions of qemu-kvm package as shipped with Red Hat
Enterprise Linux 6.

CVSS v2 metrics

Base Score 4.3
Base Metrics AV:A/AC:H/Au:N/C:P/I:P/A:P
Access Vector Adjacent Network
Access Complexity High
Authentication None
Confidentiality Impact Partial
Integrity Impact Partial
Availability Impact Partial

Find out more about Red Hat support for the Common Vulnerability Scoring System (CVSS).

Red Hat Security Errata

Platform Errata Release Date
RHEV Agents (vdsm) (qemu-kvm-rhev) RHSA-2014:0421 2014-04-22
Red Hat Enterprise Linux OpenStack Platform 3.0 (qemu-kvm-rhev) RHSA-2014:0435 2014-04-24
Red Hat Enterprise Linux 6 (qemu-kvm) RHSA-2014:0420 2014-04-22
Red Hat Enterprise Linux OpenStack Platform 4.0 (qemu-kvm-rhev) RHSA-2014:0434 2014-04-24
RHEV Hypervisor for RHEL-6 (rhev-hypervisor6) RHSA-2014:0674 2014-06-09

Affected Packages State

Platform Package State
Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) qemu-kvm-rhev Will not fix
Red Hat Enterprise Linux 7 qemu-kvm Not affected
Red Hat Enterprise Linux 5 kvm Fix deferred

Acknowledgements

These issues were discovered by Kevin Wolf and Stefan Hajnoczi of Red Hat Inc.

This page is generated automatically and has not been checked for errors or omissions.

For clarification or corrections please contact Red Hat Product Security.

Last Modified

CVE description copyright © 2017, The MITRE Corporation

Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.